Ubuntu
samba package

User Home directory not accessible after samba security update applied

Bug #2039031 reported by Richard Leger
22
This bug affects 3 people
Affects Status Importance Assigned to Milestone
samba (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

The following bug, that was fixed sometime back, is back on the burner...

Samba user home path not accessible if directory added after %U - canonicalize_connect_path failed
 https://bugs.launchpad.net/ubuntu/+source/samba/+bug/2003867

Basically after applying Samba update(s), users can not access home directories if the path is not in the "default" location. Because we use something like /home/<username>/FILES/ instead of /home/<username>/, the user home drive become inaccessible

As I don't seems to be able to re-open that previous bug report and it shows fixed anyway, I created this new bug report but the regression is related as it is the same behaviour back again.

From our point of view the old package versions is 4.15.13+dfsg-0ubuntu0.20.04.5 was working fine
    https://launchpad.net/ubuntu/+source/samba/2:4.15.13+dfsg-0ubuntu0.20.04.5

...but the new version is 4.15.13+dfsg-0ubuntu0.20.04.6 is failing
    https://launchpad.net/ubuntu/+source/samba/2:4.15.13+dfsg-0ubuntu0.20.04.6

As temporary fix for now, we may be rolling back to previous version, but we cannot do it via 'aptitude' because some of the dependencies are no longer available. This also may require to stop automatic updates for a short while which is not great from a security point of view.

At the meantime, we would appreciate some help like previously to have it fixed upstream and possibly to prevent it to happen again in the future in the measure of possible.

Thank you in advance.

Richard Leger (richard-leger)
tags: added: focal
tags: added: samba
Andreas Hasenack (ahasenack)
tags: added: regression-security
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in samba (Ubuntu):
status: New → Confirmed
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

I have reproduced this issue. The regression seems to be introduced by one of our builders. I am preparing a new package in our PPA here:

https://launchpad.net/~ubuntu-security-proposed/+archive/ubuntu/ppa/+packages

Once I have confirmed that the new build solves this issue, I will be releasing it as a regression update today, and adding a specific test for this issue to our test procedures to make sure this regression doesn't happen again.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package samba - 2:4.15.13+dfsg-0ubuntu0.20.04.7

---------------
samba (2:4.15.13+dfsg-0ubuntu0.20.04.7) focal-security; urgency=medium

  * No-change rebuild to fix build issue resulting in regressions.
    (LP: #2039031)

 -- Marc Deslauriers <email address hidden> Wed, 11 Oct 2023 13:30:13 -0400

Changed in samba (Ubuntu):
status: Confirmed → Fix Released
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

I have released the update that should fix this issue:

https://ubuntu.com/security/notices/USN-6425-2

Please comment in this bug if it still isn't fixed in your environment. Thanks!

Revision history for this message
John Edwards (john-cornerstonelinux) wrote :

Hi. Initial tests on Ubuntu 20.04 with the new 4.15.13+dfsg-0ubuntu0.20.04.7 package look good and users can access home directories which are not in the usual place.

Thanks very much to Marc for his speedy response to this problem.

Revision history for this message
Richard Leger (richard-leger) wrote :

Thank you for having resolved the issue so quickly :-)

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.